$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json) Hash identifier: 9Rb0cXZgdX8CC2JUzQ+kHgdQNIwUWij6UQCE97bKpy4= Subject key identifier: 42:63:3D:FE:54:44:74:F4:83:40:96:AE:21:32:19:2F:AF:EF:D3:F6 Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 0766 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft Manifest number: 075B Signing time: Fri 18 Jul 2025 21:57:01 +0000 Manifest this update: Fri 18 Jul 2025 21:57:01 +0000 Manifest next update: Fri 25 Jul 2025 21:57:01 +0000 Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: y2hoy06Vmm6KjWGzFD68H0c4BatZTn5d4/+ytspzzFw=) 2: C2C5450E608B11F0BF46DC2EC4F9AE02.roa (hash: D1qcgVGZql5RrIKafCkI4bM9fu5CZK6G546UdqksHKg=) 3: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: 9PkY3r845C6Gg3gR8AKgajQ8wsvmdGvtBQ6YZXFN9yE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1894 (0x766) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71, serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: Jul 18 21:57:01 2025 GMT Not After : Jul 25 21:57:01 2025 GMT Subject: CN=687ac32d-4a80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:42:ee:3c:9f:51:f3:7b:ea:07:02:2d:52:29: ea:3d:ce:be:5c:86:7b:bc:18:2c:8b:98:95:6f:b4: 7c:19:2a:83:41:01:6e:28:a6:ed:ab:1b:75:7f:1e: 0e:6b:58:65:e8:d9:00:08:77:e5:bb:37:da:9b:10: f8:d0:6a:90:8a:fb:85:04:37:ef:67:28:91:47:a3: 9f:ba:4c:c8:aa:67:e9:ed:c4:d1:36:a4:62:30:9d: a6:c4:28:18:8c:c7:63:7c:95:90:9e:7c:b3:4c:52: b0:d3:e7:75:a3:5f:6e:83:64:19:c4:55:2d:f9:3a: 16:94:a3:a0:1c:e3:8c:53:62:12:2f:ad:25:0a:65: d2:d2:cd:5c:c1:83:90:10:1c:43:85:6b:37:9c:20: e6:95:7e:36:95:e9:e7:e4:39:c4:f6:e4:dd:b7:8e: 02:2d:53:fe:cd:b1:28:a2:36:04:0d:a8:5b:67:50: 19:25:2a:5f:c0:c9:3c:07:e9:6d:ac:ae:b1:eb:f6: fa:0a:5d:ec:a1:24:44:33:dd:de:72:c3:44:e5:ee: f2:17:0d:81:02:3d:28:6d:f1:16:39:e2:01:85:c7: 15:9c:11:5c:a8:09:12:c7:9f:fd:73:bf:dc:a0:74: 6f:69:87:59:3d:b0:cb:ec:fb:5e:4f:ba:9b:3d:59: f1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:63:3D:FE:54:44:74:F4:83:40:96:AE:21:32:19:2F:AF:EF:D3:F6 X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:75:26:ff:2e:a4:a5:cb:12:90:d7:84:8b:fd:71:e0:f3:ed: ad:76:b5:62:da:4d:9d:33:cf:38:77:75:bc:c5:7c:1a:61:1b: 7d:29:f0:18:5d:e1:3d:1e:eb:22:87:f1:93:c4:e8:ea:ce:40: 74:38:61:16:46:29:7c:e6:ef:28:e6:ee:56:19:cf:76:db:24: 6e:67:db:a1:3e:20:19:a5:f3:66:e9:5d:72:a1:0d:97:11:48: 63:c2:d9:1c:b6:f1:3a:65:62:4d:6f:54:63:29:26:c9:38:f2: 49:d0:d0:13:a5:5f:1f:ea:e1:92:79:20:58:e1:24:63:f9:0c: 6f:51:f5:93:02:20:2c:d5:8d:5a:9b:4f:fe:ad:1f:b4:86:54: c5:06:11:5c:af:19:5a:fb:a4:23:3b:df:83:9f:ce:4d:b6:6b: 25:dc:58:47:5e:6e:0f:d7:8c:c1:f3:3f:82:ea:fd:20:2c:97: 7b:95:91:0e:e6:0a:67:81:19:3d:b9:fe:43:87:8d:fa:66:4f: c9:2e:68:ab:e7:41:d8:85:90:17:ef:44:a6:19:15:4e:62:f4: 37:8e:bb:a5:13:b8:27:29:79:1b:be:0b:a5:13:92:32:1e:f6: a5:e8:4a:32:16:e7:24:3b:d3:00:5b:2d:60:b5:fb:b8:95:28: e9:3e:60:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjUwNzE4MjE1NzAxWhcNMjUwNzI1MjE1NzAxWjAYMRYwFAYD VQQDEw02ODdhYzMyZC00YTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ULuPJ9R83vqBwItUinqPc6+XIZ7vBgsi5iVb7R8GSqDQQFuKKbtqxt1fx4O a1hl6NkACHfluzfamxD40GqQivuFBDfvZyiRR6OfukzIqmfp7cTRNqRiMJ2mxCgY jMdjfJWQnnyzTFKw0+d1o19ug2QZxFUt+ToWlKOgHOOMU2ISL60lCmXS0s1cwYOQ EBxDhWs3nCDmlX42lenn5DnE9uTdt44CLVP+zbEoojYEDahbZ1AZJSpfwMk8B+lt rK6x6/b6Cl3soSREM93ecsNE5e7yFw2BAj0obfEWOeIBhccVnBFcqAkSx5/9c7/c oHRvaYdZPbDL7PteT7qbPVnxQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJjPf5U RHT0g0CWriEyGS+v79P2MB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3dSb/LqSlyxKQ14SL/XHg8+2tdrVi2k2dM884d3W8xXwaYRt9KfAY XeE9Husih/GTxOjqzkB0OGEWRil85u8o5u5WGc922yRuZ9uhPiAZpfNm6V1yoQ2X EUhjwtkctvE6ZWJNb1RjKSbJOPJJ0NATpV8f6uGSeSBY4SRj+QxvUfWTAiAs1Y1a m0/+rR+0hlTFBhFcrxla+6QjO9+Dn85Ntmsl3FhHXm4P14zB8z+C6v0gLJd7lZEO 5gpngRk9uf5Dh436Zk/JLmir50HYhZAX70SmGRVOYvQ3jrulE7gnKXkbvgulE5Iy Hval6EoyFuckO9MAWy1gtfu4lSjpPmCd -----END CERTIFICATE-----Generated at Sun Jul 20 07:47:14 2025 by rpki-client